Get a demo

Tag Archive: GDPR Compliance

Risk exposure is indiscriminate, regardless to the size of the company. Now that GDPR is in full effect, organizations should be engaged in activities to display compliance. This includes implementing a solid vendor risk management program to identify, track and monitor your company’s risk exposure. Under GDPR your company could face fines, penalties and other possible legal ramifications. To prepare for GDPR, organizations should have overhauled critical business operations, one being their vendor risk management program. The expressed language in GDPR regarding data controllers and processors is very clear, you are liable if one of your third party’ processors encounters a breach that leads to customer data being compromised. The illustration below provides a high-level overview of the applicable…

With the May 25th deadline for GDPR compliance now long gone, is your organization currently in compliance? If your answer is “no,” take heart: You are not alone. Most CIOs report that, when this sweeping new privacy-and-security law takes effect, their enterprise will not meet its mandates. Many say they are confused about exactly what they must do to avoid the heavy penalties—and loss of reputation—they may face as a result. Granted, a regulation with 99 directives can be intimidating. But non-compliance with the GDPR is not an option, not for those wanting to do business with people and companies in the EU. The penalty, if you do not comply, may be steep: up to 4 percent of annual global…

Now that the May 25th compliance date for the European Union’s (EU) General Data Protection Regulation (GDPR) has come and gone, the GDPR is now a reality that is expected to significantly change the way organizations process personal data and respond to data breaches. The regulation was adopted in 2016, will apply to organizations both in and outside of the EU and require them to institute new or enhanced data protection practices. The first thing to you should do is determine whether the GDPR applies to your organization. Article 3 of the GDPR provides and overview of the regulation which applies to any organization that processes, holds or somehow controls or monitors the personal data of individuals in the EU,…

Now that May 25 has past, it’s time to push the panic button if you don’t comply with the European Union’s Global Data Protection Regulation (GDPR). Right? Judging from the alarm bells sounding across the blogosphere, that’s what many would have you believe. If you haven’t reached GDPR compliance by the deadline, they say, you should be afraid. I agree—but not for the reasons you might think. How did we get here? Organizations have had two years to comply with this sweeping regulation, and perhaps should have seen it coming long before. The GDPR was in the works, and in the news, for four years before being adopted in April 2016. But maybe some CIOs weren’t paying close attention. The…

The term “business as usual” takes on a whole new meaning May 25, when the European Union’s General Data Protection Regulation (GDPR) goes into effect. This complex, game-changing law will mandate new ways of doing business in virtually every area of operations, from human resources to marketing, to technology and cybersecurity. In fact, according to a PwC survey, 92 percent of U.S. companies consider preparing for GDPR compliance a top priority. Is your enterprise ready? The first-ever global privacy and security law, GDPR outlines new rules—99 of them– for protecting EU citizen data. These provisions: Broaden the scope of the term “personal data”; Grant EU citizens absolute rights over their personal data, including the “right to be forgotten”; Set stringent requirements…